ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...

A fake $TEMU crypto airdrop uses the ClickFix trick to make victims run malware themselves and quietly installs a remote-access backdoor.

レトロゲームエンジン「Pyxel」で3月2日、「Visual Studio Code」拡張機能の提供が開始された。「Pyxel」の作者自身が開発した公式の拡張機能で、現在「Visual Studio Marketplace」から無償でダウンロード可能 ...

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

Something else to worry about.

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.

Ransomware threat actors tracked as Velvet Tempest are using the ClickFix technique and legitimate Windows utilities to deploy the DonutLoader malware and the CastleRAT backdoor.

OpenAI has rolled out the Codex desktop app for Windows. The tool debuted on macOS last month and will now enable developers ...

Using an AI coding assistant to migrate an application from one programming language to another wasn’t as easy as it looked. Here are three takeaways.

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users ...